PT-2017-16051 · Oracle · Solaris

Published

2017-06-22

Updated

2019-10-03

CVE-2017-3630

CVSS v3.1

5.3

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions Oracle Sun Systems Products Suite (Solaris component) versions 10 and 11

Description The issue allows a low-privileged attacker with logon access to the infrastructure to compromise Solaris, resulting in unauthorized access to some Solaris data. This includes update, insert, or delete access, as well as read access to a subset of the data. It also allows for a partial denial of service (DOS) of Solaris.

Recommendations For versions 10 and 11, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Memory Corruption

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-787

Related Identifiers

CVE-2017-3630

Affected Products

Solaris

PT-2017-16051 · Oracle · Solaris

CVE-2017-3630

Weakness Enumeration

Related Identifiers

Affected Products

References · 8